[Git][security-tracker-team/security-tracker][master] Reserve DSA for frr
Aron Xu (@aron)
aron at debian.org
Thu Jun 4 18:33:27 BST 2026
Aron Xu pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f9dff0c3 by Aron Xu at 2026-06-05T01:32:55+08:00
Reserve DSA for frr
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -104162,29 +104162,21 @@ CVE-2025-61128 (Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G
NOT-FOR-US: Wavlink
CVE-2025-61107 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
- frr 10.5.1-3 (bug #1119292)
- [trixie] - frr <postponed> (Minor issue, revisit when fixed upstream)
- [bookworm] - frr <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61106 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
- frr 10.5.1-3 (bug #1119292)
- [trixie] - frr <postponed> (Minor issue, revisit when fixed upstream)
- [bookworm] - frr <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61104 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
- frr 10.5.1-3 (bug #1119292)
- [trixie] - frr <postponed> (Minor issue, revisit when fixed upstream)
- [bookworm] - frr <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61103 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
- frr 10.5.1-3 (bug #1119292)
- [trixie] - frr <postponed> (Minor issue, revisit when fixed upstream)
- [bookworm] - frr <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[05 Jun 2026] DSA-6322-1 frr - security update
+ {CVE-2023-3748 CVE-2024-27913 CVE-2024-31950 CVE-2024-31951 CVE-2024-34088 CVE-2025-61099 CVE-2025-61100 CVE-2025-61101 CVE-2025-61102 CVE-2025-61103 CVE-2025-61104 CVE-2025-61105 CVE-2025-61106 CVE-2025-61107 CVE-2026-5107 CVE-2026-28532 CVE-2026-37457 CVE-2026-37458}
+ [bookworm] - frr 8.4.4-1.1~deb12u2
+ [trixie] - frr 10.3-3+deb13u1
[03 Jun 2026] DSA-6321-1 ceph - security update
{CVE-2024-31884 CVE-2024-47866}
[bookworm] - ceph 16.2.15+ds-0+deb12u2
=====================================
data/dsa-needed.txt
=====================================
@@ -34,8 +34,6 @@ firebird3.0
--
firebird4.0/stable
--
-frr (aron)
---
gh/oldstable
--
gst-plugins-good1.0/oldstable (jmm)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f9dff0c374a8ede7a35e5c092f2a2a41fa04d371
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f9dff0c374a8ede7a35e5c092f2a2a41fa04d371
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260604/cf346c20/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list